[MOVED] Users / Group Migration from AD to Openldap

Latest response

[Note: The Groups area will soon be archived. This topic has been moved to the new community discussion area, so head over and check it out.]

 

Hello,

Is there any way or tool which would be helpful in migrating AD users/groups to openldap ?

 

Current requirement and environment is as follows:

1. Active Directory on win2008

2. Users are authenticating from MAC and Windows clients against AD.

3. Access to ISILION storage is also using AD.

 

To replace Ad we are planning to go with RHEL6.X with openldap.

1. We need tools to migrate users/groups and schema from AD to openldap

2. Access to Samba share using opendap credentials. Here we are planning to use https://access.redhat.com/site/articles/17303

Note: The password sync will only be one sided, i.e. from Samba to LDAP.

Is there any way if user change password in ldap will sync to samba ?

Thanks in advanced

Regards,

Santosh

Responses

Hello Santosh,

 

This only a reply to the last question:

If you perform the steps/hints in

https://access.redhat.com/site/articles/17303

there will not be any password sync at all, Samba will check users&passwords in de ldap "database", it will not use the smbpasswd files anymore.

 

Kind reagrds,

 

 

Jan Gerrit

Hello Jan,

Thanks for the prompt reply.

As per the KB If users want to change their password then they have to ssh to the Samba server and run smbpasswd so that both passwords will be changed.

So I was confused. 

--- > there will not be any password sync at all, Samba will check users&passwords in de ldap "database", it will not use the smbpasswd files anymore.

Does it mean if change is password done by using ldapmodify or any tool or by passwd command, it should allow samba user to authenticate using new password. am I correct ?

Regards,

Santosh

As the Groups will be going read-only in the next few days, I've migrated this topic to our new Discussions area. You can continue the thread here: https://access.redhat.com/site/discussions/460923

I added a new comment on the link provided by David Poweles.

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.